Back to skill
Skillv1.0.0
VirusTotal security
Matlab Bridge · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 16, 2026, 11:26 AM
- Hash
- 7cb0bf1d641ed38e85a6a2714ad6e7d89e5940b567483f56727f6d99a3ace9f1
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: matlab-bridge Version: 1.0.0 The skill provides a bridge to execute arbitrary MATLAB code and scripts using the subprocess module in matlab_bridge.py, which is a high-risk capability. While this functionality is aligned with the stated purpose of the skill, the lack of input sanitization and the ability to run arbitrary commands through the MATLAB batch interface create a significant attack surface for command injection. Additionally, the scripts contain hardcoded absolute file paths (e.g., 'D:\Personal\OpenClaw\matlab-outputs\'), which is unusual for a generic skill and suggests an environment-specific configuration. No evidence of intentional malice or data exfiltration was found, but the broad execution permissions warrant a suspicious classification.
- External report
- View on VirusTotal